Job Details

Overview

SOSi is seeking a Cyber Security Operations Center (CSOC) Director to join our team in Pearl Harbor, Hawaii. The customer based out of Honolulu, Hawaii creates, manages, and supports IT solutions for USINDOPACOM, its mission and its 5,000+ customers throughout the Pacific theater. Our team solves challenging technical problems that enable USINDOPACOM to realize critical and time-sensitive C2 strategies.

Essential Job Duties

The CSOC Director is a key role in the team responsible for overseeing and ensuring the protection of USINDOPACOM's IT infrastructure, systems, and data against cyber threats. This role involves leading a team of security, network, and systems analysts or administrators, implementing advanced security technologies, developing proactive threat detection and response strategies, and performing real-time monitoring and detection. The CSOC Director collaborates with executive leadership, IT, and business units to align cyber security operations with business objectives.

Strategic Leadership & Management:

1. Lead and manage the CSOC team, including hiring, training, and mentoring personnel.
2. Develop, execute, and continuously improve a strategic roadmap for CSOC operations to align with organizational goals and regulatory requirements.
3. Establish policies, procedures, and playbooks to enhance security monitoring, incident detection, and response.
4. Maintain a culture of continuous improvement through regular training, exercises, and technological advancements.

Security Operations & Incident Response:

1. Oversee real-time security monitoring, incident response, and threat hunting activities.
2. Ensure rapid detection, analysis, containment, and eradication of cybersecurity threats.
3. Lead post-incident reviews, root cause analysis, and lessons learned documentation.
4. Contribute to the development and maintenance of the incident response plan and coordinate responses to security incidents, including internal and external stakeholders.

Threat Hunting & Risk Management:

1. Refine CSOC operations with the intent to stay ahead of emerging cyber threats, vulnerabilities, and attack techniques.
2. Implement proactive threat intelligence and security analytics to improve defense capabilities.
3. Work with risk management and compliance teams to ensure adherence to industry standards (e.g., NIST, ISO 27001).
4. Conduct threat modeling and tabletop exercises to test the effectiveness of security controls.

Technology & Infrastructure Oversight:

1. Manage and optimize CSOC tools, including SIEM, IDS/IPS, and firewalls.
2. Manage a team of IT professionals and technicians.
3. Ensure seamless integration of security technologies with IT infrastructure.
4. Oversee security, system, and network logging, monitoring, and alerting processes to minimize false positives and optimize response times.
5. Design and implement strategic plans to ensure the IT infrastructure supports USINDOPACOM's mission requirements.
6. Evaluate and recommend new security technologies to enhance detection and response capabilities.

Compliance & Reporting:

1. Provide regular reporting on security incidents, CSOC performance metrics, and overall risk posture to executive leadership.
2. Coordinate with auditors and assessors during security audits and compliance assessments.

Minimum Requirements

1. Active Top Secret DoD security clearance with SCI eligibility and US Passport.
2. Bachelor's degree in Computer Science, Information Security, or a related field.
3. DoD 8570 IAM-III compliant (CASP, CISSP, CISM).
4. 10+ years of experience in cybersecurity.
5. Experience with monitoring network operations to ensure networks are operational and running at peak performance levels.
6. Strong knowledge of operating systems and system performance metrics.
7. Strong knowledge of security frameworks and incident response methodologies.
8. Experience with SIEM, firewalls, IDS/IPS, and other security technologies.
9. Hands-on experience managing and responding to security incidents.
10. Proven ability to develop and execute security operations strategies.
11. Excellent leadership, communication, and crisis management skills.

Preferred Qualifications

1. Master's degree in Computer Science, Information Security, or a related field.
2. Prior leadership experience in a NOC, SOC, or CSOC.

Work Environment

1. Working conditions are normal for an office environment.
2. Fast-paced, deadline-oriented environment.
3. May require periods of non-traditional working hours including consecutive nights or weekends.

Working at SOSi

All interested individuals will receive consideration and will not be discriminated against for any reason.